KDC 11 Error in the System Event Log

November 7, 2008 — brianm

I ran into this error awhile back after building a new root level Domain Controller (DC). My initial health checks panned out ok but after about an hour the following should up in my System Event log: Event Type: Error Event Source: KDC Event Category: None Event ID: 11 User: N/A Computer: DCShortName Description: There are multiple accounts with name cifs/DCShortName of type DS_SERVICE_PRINCIPAL_NAME.

My forest root domain has a fairly small amount of accounts with the majority of them being DCs. I knew that the name that was added was not in conflict with the forest root. With this name being the shortname of the DC I knew that I would have to check other child domains. After a quick search of the directory (GC) via Active Directory Users and Computers I was able to find another computer with the same name. Unfortunately one of the computers had to go bye-bye…and it sure wasn’t going to be my DC. Needless to say after the computer was removed from Active Directory the errors stopped showing up.